Cybersecurity specialist Palo Alto Networks has unveiled what it claims to be the world’s first next-generation firewall (NGFW) embedded with machine learning (ML) capability specifically designed to proactively protect IoT devices in the network against potential threats.
The company’s ML-powered NGFW with its proprietary PAN-OS 10.0 was introduced yesterday to over 1,000 customers and partners in Hong Kong via a virtual cybersummit hosted by Wickie Fung, managing director, Hong Kong & Macau at Palo Alto Networks,
"Thirteen years ago, we completely changed network security when we created the Next-Generation Firewall," said Nir Zuk, founder and chief technology officer at Palo Alto Networks. "As enterprise networks are widening — with hybrid clouds, IoT devices and home offices — and attacks rapidly and automatically evolve, we again need a radical new approach to cybersecurity. PAN-OS version 10.0 is continuously learning and proactively improving security across multiple fronts, so security professionals don't just keep up but get ahead."
Palo Alto Networks’ newest offering is expected to be available in mid-July and will be available to all current customers with valid support contracts.
The ML-Powered NGFW with PAN-OS 10.0 introduces multiple industry firsts, including:
- ML-Based In-line Malware and Phishing Prevention
As attackers use machines to automatically morph attacks, signatures become less valuable in preventing these attacks. Previously, network security products only used machine learning models for out-of-band detection, but the Palo Alto Networks ML-Powered NGFW now uses in-line machine learning models to help prevent previously unknown attacks.
- Zero-Delay Signature Updates
Already leading the industry in reducing the reaction time for threats from days to minutes, Palo Alto Networks is now introducing zero-delay protection, resulting in a 99.5% reduction in systems infected.
- ML-Based Integrated IoT Security
New IoT devices are proliferating rapidly, often joining the network unsecured and without InfoSec’s knowledge. The new Palo Alto Networks IoT Security is powered by ML to deliver complete device visibility, including never-before-seen devices; highlight anomalies and vulnerabilities; and recommend appropriate security policies — all without the need for additional sensors or infrastructure.
- ML-Based Security Policy
The ML-Powered NGFW uses machine learning to analyse vast amounts of telemetry data, and then recommend policies. With PAN-OS 10.0 and IoT Security, customers will be able to view and adopt the IoT Security policy recommendations for safe device behaviour. This will save time, reduce the chance of human error, and help secure IoT devices.
By bringing these four industry firsts into a single system, Palo Alto Networks said the ML-Powered NGFW helps organisations protect against up to 95% of unknown file and web-based threats instantly.
It also automates policy recommendations to save time and reduce the chance of human error, as well as adapts and provides instantaneous real-time protection. Most importantly, it extends visibility and security to all devices, including unmanaged IoT devices — without the need to deploy additional sensors.
Furthermore, PAN-OS 10.0 introduces the CN-Series, a containerised form factor for the ML-Powered NGFW, and 70+ innovative new capabilities, including easier decryption, high availability clustering, a new high-performance hardware card, Threat Prevention and DNS Security enhancements.